| |
Frantic
Registered: Mar 2003 Posts: 1627 |
Codebase64 updates coming up
Hi folks!
Codebase64 has been spam attacked quite a bit recently. I need to take the whole thing down and sort things out a bit more thoroughly. All data is backed up though, so nothing is lost through the attacks. At worst you may be required to re-register to be able to edit again, but we'll see about that.
In the process I will also need to update to the latest version of dokuwiki and this has some additional consequences, since the way the user interface templates work has changed since the version that is currently running on the site so there is some work to do related to that.
Unfortunately I don't really have much time to spend on this, so the process might cause some downtime. Hard to say exactly how long. Hopefully not more than a few days, but I'll rather not promise anything at the moment.
Sincerely,
The codebase64 slave |
|
| |
Total Chaos
Registered: Mar 2006 Posts: 74 |
Thanks, we appreciate your work dude! |
| |
Moloch
Registered: Jan 2002 Posts: 2896 |
Some figures since mid-April
1346 spammer accounts created
9000+ spam entries added to wiki
In recent days the wiki was experiencing ~35 fake sign-ups per hour, each dumping their payload. I reverted to an old user list, chances are some recent legit sign-ups were deleted in the process. Account registration is now turned off until Frantic can get the wiki back into tip top shape.
Most, if not all, the spam entries were deleted last night. Hopefully I didn't kill any real data in the process; I'll surely hear about it if something useful was deleted. |
| |
TheRyk
Registered: Mar 2009 Posts: 2076 |
we had the same issues with spambots on C64-wiki.com and C64-wiki.de some years ago
We could only get rid of that nuisance by forcing people to solve some C64 riddles when registering or editing unlogged. |
| |
Mr. SID
Registered: Jan 2003 Posts: 421 |
How many users do sign up normally? It feels like it should be doable to have a manual registration process. |
| |
Count Zero
Registered: Jan 2003 Posts: 1825 |
As Sid says - I admit there are extremely few editors for rr.pokefinder.org but never even thought of public registration. Must be hell to keep up with deleting crap similar to well crawled forums. |
| |
chatGPZ
Registered: Dec 2001 Posts: 11128 |
for such wiki it makes even more sense to have non public signup than it does for say csdb, IMHO :) |
| |
Moloch
Registered: Jan 2002 Posts: 2896 |
I agree the manual sign-up process might be the best option. Looking over the cleaned up userlist there appears to be ~250 accounts built-up over the span of a few years.
Lets see what Frantic thinks about the idea |
| |
chatGPZ
Registered: Dec 2001 Posts: 11128 |
doesnt pretty much everyone who is potentially going to contribute have an account already anyway? =D |
| |
TheRyk
Registered: Mar 2009 Posts: 2076 |
good point :D |
| |
Conjuror
Registered: Aug 2004 Posts: 168 |
A good way I know to filter out spam bot signups is to have a field which is part of the sign up form but is hidden from the user. The bot will fill out the field but the user wont see it.
I'm sure bot makers know this, so marking a field as hidden in the css is probably not enough. Try an image over the top or use as the field background and remove the border styling from the field. Put a div over the top etc, etc.
The final part is to just drop the sign up if this field is populated. |
... 4 posts hidden. Click here to view all posts.... |
Previous - 1 | 2 - Next |